This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/ebfd68-425f-4396-afcb-2bbc8001b46c/1/0P2MOC-zABkj2wkrhKo3feyJgm4.roa File: 0P2MOC-zABkj2wkrhKo3feyJgm4.roa (raw, json) Hash identifier: ptWNlzPMq1Y8jEA8BdUmma2Y/J+PbhWlBppdHwqFP38= Subject key identifier: D0:FD:8C:38:2F:B3:00:19:23:DB:09:2B:84:AA:37:7D:EC:89:82:6E Certificate issuer: /CN=79e1b5102923fe45afe4ee71d8c7d721a74b957b Certificate serial: 019BDB91757B7484334D2996B94F07B78BC3 Authority key identifier: 79:E1:B5:10:29:23:FE:45:AF:E4:EE:71:D8:C7:D7:21:A7:4B:95:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eeG1ECkj_kWv5O5x2MfXIadLlXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/ebfd68-425f-4396-afcb-2bbc8001b46c/1/0P2MOC-zABkj2wkrhKo3feyJgm4.roa Signing time: Tue 20 Jan 2026 13:21:41 +0000 ROA not before: Tue 20 Jan 2026 13:21:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204433 IP address blocks: 2001:678:1108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/ebfd68-425f-4396-afcb-2bbc8001b46c/1/eeG1ECkj_kWv5O5x2MfXIadLlXs.crl rsync://rpki.ripe.net/repository/DEFAULT/62/ebfd68-425f-4396-afcb-2bbc8001b46c/1/eeG1ECkj_kWv5O5x2MfXIadLlXs.mft rsync://rpki.ripe.net/repository/DEFAULT/eeG1ECkj_kWv5O5x2MfXIadLlXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:db:91:75:7b:74:84:33:4d:29:96:b9:4f:07:b7:8b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79e1b5102923fe45afe4ee71d8c7d721a74b957b Validity Not Before: Jan 20 13:21:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0fd8c382fb3001923db092b84aa377dec89826e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:10:e5:a8:5a:53:de:d2:26:6b:97:db:3c:81: 22:77:7f:60:7d:9c:f2:9d:9d:fa:a0:ae:15:5e:5d: 22:6e:d7:a1:b1:9f:49:33:e4:56:15:c7:82:d1:e7: 05:8b:e8:e6:c8:ce:c8:6e:10:30:22:f6:92:54:4c: 72:58:16:fc:a0:f1:86:e3:17:d4:6f:d6:bd:a7:80: 78:be:d8:4c:96:08:e3:6f:76:e4:78:47:58:59:3d: 44:ec:84:ca:da:75:21:19:9e:85:fe:84:ad:d2:ea: 17:38:2b:0d:b7:7e:61:77:6c:13:02:7a:7b:af:79: a4:3e:76:ed:58:3c:13:10:3f:21:44:93:c0:e2:5f: 65:75:28:3c:b9:4c:40:47:79:1d:4f:8a:90:da:dd: 50:73:39:90:d7:05:db:fa:0a:b2:cc:6a:39:07:97: 6d:13:48:09:da:c5:d7:4f:00:33:7d:fe:72:29:6c: ab:ca:73:f4:c0:21:67:7d:af:d4:82:d6:d0:1f:20: d5:f2:62:94:42:1d:ac:be:e5:a6:be:b7:7c:4f:5a: 26:46:b0:f3:96:f9:ed:c8:ff:54:a6:ff:6c:76:c7: 7f:4e:14:cf:10:f6:8f:0d:a4:58:b3:ef:9c:5a:b1: ed:36:d2:70:93:25:7e:cb:ff:b3:e4:2a:ca:8f:b6: e9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FD:8C:38:2F:B3:00:19:23:DB:09:2B:84:AA:37:7D:EC:89:82:6E X509v3 Authority Key Identifier: keyid:79:E1:B5:10:29:23:FE:45:AF:E4:EE:71:D8:C7:D7:21:A7:4B:95:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eeG1ECkj_kWv5O5x2MfXIadLlXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ebfd68-425f-4396-afcb-2bbc8001b46c/1/0P2MOC-zABkj2wkrhKo3feyJgm4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ebfd68-425f-4396-afcb-2bbc8001b46c/1/eeG1ECkj_kWv5O5x2MfXIadLlXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1108::/48 Signature Algorithm: sha256WithRSAEncryption 34:0e:3c:fd:83:d6:db:83:aa:40:51:10:38:c1:21:e2:81:ae: cb:ee:84:79:f9:5e:53:bd:87:c1:d2:14:a4:70:9d:c6:3f:2b: 43:45:25:86:76:99:51:60:ce:a3:53:3a:f3:c1:a5:30:ad:d4: 88:e8:b4:b6:88:7f:0b:65:88:2f:ae:64:e5:8a:7d:3c:0b:00: 91:ff:d9:e1:0d:89:72:0e:7e:8c:ec:78:40:ad:0e:7c:2d:86: 64:43:27:b9:aa:c7:c5:97:9f:b1:12:05:c4:22:da:94:54:27: 37:66:c1:4e:6c:71:34:fd:4f:2a:1b:43:cf:64:c9:83:d3:f1: b8:90:88:6f:7e:61:cb:73:ce:8a:37:e6:e8:9f:8f:22:a5:4d: 34:7f:79:81:2a:5f:ec:ec:e3:90:f6:79:b2:da:74:aa:29:f7: cd:ba:57:bc:b5:1b:59:a1:d2:8d:73:5e:33:78:c3:f1:f4:f6: 2a:d5:b7:28:99:5a:27:7d:6e:07:ba:c8:cb:a6:fc:ca:53:60: 29:53:df:28:6b:7c:0c:6a:65:94:12:4a:9a:71:60:80:2b:00: 17:e7:30:cc:c2:6d:7e:15:dc:da:82:0f:0b:75:fa:76:37:9f: bb:9e:f2:a4:76:bf:6f:c8:e6:b3:4a:fe:8c:a5:87:c8:88:04: f5:85:9d:95 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZvbkXV7dIQzTSmWuU8Ht4vDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5ZTFiNTEwMjkyM2ZlNDVhZmU0ZWU3MWQ4YzdkNzIxYTc0 Yjk1N2IwHhcNMjYwMTIwMTMyMTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGZkOGMzODJmYjMwMDE5MjNkYjA5MmI4NGFhMzc3ZGVjODk4MjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRDlqFpT3tIma5fbPIEid39gfZzy nZ36oK4VXl0ibtehsZ9JM+RWFceC0ecFi+jmyM7IbhAwIvaSVExyWBb8oPGG4xfU b9a9p4B4vthMlgjjb3bkeEdYWT1E7ITK2nUhGZ6F/oSt0uoXOCsNt35hd2wTAnp7 r3mkPnbtWDwTED8hRJPA4l9ldSg8uUxAR3kdT4qQ2t1QczmQ1wXb+gqyzGo5B5dt E0gJ2sXXTwAzff5yKWyrynP0wCFnfa/UgtbQHyDV8mKUQh2svuWmvrd8T1omRrDz lvntyP9Upv9sdsd/ThTPEPaPDaRYs++cWrHtNtJwkyV+y/+z5CrKj7bpZwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFND9jDgvswAZI9sJK4SqN33siYJuMB8GA1UdIwQY MBaAFHnhtRApI/5Fr+TucdjH1yGnS5V7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWVHMUVDa2pfa1d2NU81eDJNZlhJYWRMbFhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9lYmZkNjgtNDI1Zi00Mzk2LWFmY2It MmJiYzgwMDFiNDZjLzEvMFAyTU9DLXpBQmtqMndrcmhLbzNmZXlKZ200LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi9lYmZkNjgtNDI1Zi00Mzk2LWFmY2ItMmJiYzgwMDFiNDZj LzEvZWVHMUVDa2pfa1d2NU81eDJNZlhJYWRMbFhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeBEI MA0GCSqGSIb3DQEBCwUAA4IBAQA0Djz9g9bbg6pAURA4wSHiga7L7oR5+V5TvYfB 0hSkcJ3GPytDRSWGdplRYM6jUzrzwaUwrdSI6LS2iH8LZYgvrmTlin08CwCR/9nh DYlyDn6M7HhArQ58LYZkQye5qsfFl5+xEgXEItqUVCc3ZsFObHE0/U8qG0PPZMmD 0/G4kIhvfmHLc86KN+bon48ipU00f3mBKl/s7OOQ9nmy2nSqKffNule8tRtZodKN c14zeMPx9PYq1bcomVonfW4HusjLpvzKU2ApU98oa3wMamWUEkqacWCAKwAX5zDM wm1+Fdzagg8Ldfp2N5+7nvKkdr9vyOazSv6MpYfIiAT1hZ2V -----END CERTIFICATE-----Generated at Mon Feb 2 07:59:59 2026 by rpki-client